Title :
Framwork for information security standards storage and retrieval using security patterns
Author :
Ruamjinda, Poramaporn ; Prompoon, Nakornthip
Author_Institution :
Dept. of Software Eng., Chulalongkorn Univ., Bangkok, Thailand
Abstract :
Establishing an information security policy that aligns with the business strategy of the organization usually depends on the stakeholders´ expertise and experience. Due to the human factor constraint, this may lead to an incomplete and unclear policy. This research proposes a framework for the storage and retrieval of information security standards using information retrieval principles and security patterns based on security patterns, keyword search and the relationship among security patterns. The vector space model is used to compute the similarity between user queries and parts of security standard documents to present results relevant to the users´ needs. Recall, precision and F-measure are used to evaluate the efficiency of the proposed methods.
Keywords :
document handling; human factors; information systems; query processing; security of data; vectors; F-measure; business strategy; human factor constraint; information retrieval principles; information security policy; information security standard retrieval framework; information security standard storage framework; information systems; keyword search; precision measure; recall measure; security patterns; similarity computation; user queries; vector space model; IEC standards; ISO standards; Lead; Security; User interfaces; Information Retrieval; Information Security; Security Pattern; Security Standard;
Conference_Titel :
Software Engineering and Service Science (ICSESS), 2013 4th IEEE International Conference on
Conference_Location :
Beijing
Print_ISBN :
978-1-4673-4997-0
DOI :
10.1109/ICSESS.2013.6615309
